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(54) System for context-dependent name resolution 



(57) A context-dependent, multiply binding name 
resolution system. A name resolver is provided, con- 
nected to either a requester's system or a receiver's sys- 
tem, or both. Requests to a given service or domain 
name are resolved to the appropriate IP address. The 
intended recipient of the request is resolved based upon 
a combination of one or more predetermined criteria, in- 
cluding: information about the sender (e.g. geographical 



location, specific requester identity, etc.); information 
about the intended recipient (e.g. toad balance at the 
receiver, type of service, etc.); information contained 
within the request itself (e.g. type of service requested); 
or other information (time of day, date, random selection 
of recipient, e.g.). The system is implemented in hard- 
ware and/or software, and the resolution criteria can be 
made interdependent or independent. 
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D scription 

This invention relates to systems for context-de- 
pendent name resolution. 

In a network (either Intranet or Internet) system, 
when a host wants to communicate with another host or 
locate a service or another host on the network, the ad- 
dress is typically resolved in an absolute manner; that 
is, the naming service of the network resolves a given 
name to a single IP (Internet Protocol) address. For in- 
stance, a domain name service (DNS) call resolves a 
name to a single IP address or host name on the Inter- 
net. 

When there are many connections to a given host 
or service, the resulting congestion degrades the overall 
performance. The service provider may upgrade the 
service, e.g. to increase its capacity. In this case, in or- 
der to keep the modification of the service transparent 
to requesting hosts, a demultiplexer may be used, as 
illustrated by way of example in Figures 1-2. For in- 
stance, in Figure 1 a call to Service 3 will be uniquely 
resolved to that service's IP address and transmitted 
there accordingly, because there is on ly a single binding 
in the DNS name resolver to the host of Service 3. In 
general, in a conventional system such as that illustrat- 
d in Figures 1 , 2 and 2A, there will be a single binding 
between a name and an IP address. 

Yet another alternative is for a special type of de- 
multiplexer which may monitor the traffic, and from the 
different IP addresses can collect statistics such as re- 
sponse time and/or the load on the corresponding IP 
hosts, and use this information for load balancing by 
binding a requested name to an IP address for a host 
which is less heavily loaded. 

If Service 3 is upgraded to include Services 3.1 
through 3. Y, then the demultiplexer is added (see Figure 
2); the requesting or DNS resolving host resolves the 
request as usual and sends it out over the (Inter- or In- 
ternetwork, but the demultiplexer is interposed be- 
tween the network and the service(s), to route the in- 
coming requests to one of the services. Note that in this 
case, there is still a single binding between the DNS and 
the demultiplexer. 

A problem with this approach is that the demulti- 
plexer acts as a limiting factor on throughput, and addi- 
tionally represents a single source of failure for all of the 
services that it serves: A mechanism is needed whereby 
such a critical point and bottleneck can be avoided, 
while still providing access to the services for remote 
users. 

An alternative approach to decreasing congestion 
is through DNS spoofing, where the name resolver is 
fooled into giving out a different name binding, by keep- 
ing the name resolver updated frequently with a new 
name resolution binding based on some criteria such as 
load distribution on target servers. An example of DNS 
spoofing is shown in Figure 2A, in which a requester 2 
issues a request using the name "sun.com", and a DNS 



lookup 4 looks it up. The host (1, 2 or 3) to which the 
names is bound will depend upon criteria employed at 
the destination domain, as determined by DNS spoofing 
service 6. Such criteria may include load on the hosts, 
5 their availability, etc. The DNS spoofing service 6 polls 
the hosts 1-3 periodically or at demand, and binds one 
of them at a time to the DNS lookup name resolver for 
the name "sun.com". 

In a spoofing service, the criteria used to achieve 

10 the binding are not related to the context of the request- 
er; they rely only upon information at the destination. 
Thus, much information that could be important in mak- 
ing a binding is not utilized, in none of the known sys- 
tems is caller context used. 

1S It would accordingly be advantageous to have a 
system which takes into account the context of the re- 
quester in the process of name resolution. 

Various respective aspects and features of the in- 
vention are defined in the appended claims. 

20 A context-dependent name resolution system is 
presented, which implements predetermined criteria for 
static or dynamic binding of a "name" to any one of sev- 
eral "objects" of the same type. Which "object" is select- 
ed for the binding is determined by a "name resolver" 

25 using context information that is explicitly specified by 
the requestor in a name resolution lookup call to the 
"name resolver". The "name resolver", which is imple- 
mented as a server program, stores a lookup table com- 
prising bindings of a "name" to several different instanc- 

30 es of an object, along with "policy" information which de- 
fines the criteria for selecting an instance of the object. 
For instance, the name may be an internet URL of the 
form "www.sun.com", and the resolved to object may b 
an IP address of the type 192.146.85.82. Thus the 

55 "name resolver" will store the tuple: <www.sun.com> 
<IP_address_1> <IP_address_2>..., and will store pol- 
icies on which IP address to bind to www.sun.com when 
a lookup request specifying "www.sun.com 0 is received 
by it. 

40 By enabling multiple binding support in the "name 
resolver", several advantages are realized. First, the 
system enables new resources to be added transpar- 
ently to the caller. When a new server is added to dis- 
tribute the load for one or more hosts corresponding to 

is the name "sun.com 0 , for instance, the IP address for the 
new server is simply added to the tuple in the name re- 
solver, along with any desired policy criteria, e.g. to use 
only between 9 a.m. and 5 p.m. 

Secondly, the fundamental limit to scaling which is 

so inherent in today's single binding systems is remov d, 
by enabling multiple destination servers providing the 
same service to be referenced by the same "name" han- 
dle by the caller (for example "sun.com"), and the name 
to be resolved by the name resolver to different physical 

ss computers servers, d pending upon caller cont xt. 
Many instances of the name resolver may be running 
on different physical computers, and many instances of 
the services may be running, and the requester will ac- 



BNSDOCID: <EP 08174A4A2J„> 



2 



3 



EP 0 817 444 A2 



4 



cess the name resolv r closest to him; and the resolved 
object that is closest to the requester or that can best 
serve the request (based upon some selected or prede- 
termined criteria) will be bound to the request, all trans- 
parently to the requester. Another advantage of the sys- 
tem of the invention is that it allows resources to be eas- 
ily replicated transparently to the user, eliminating any 
single point of failure in the network or at the service end 
point. If one valid destination fails, is not responding or 
is overloaded, the name resolver is already capable of 
binding a "name" to multiple destinations, and the una- 
vailable destination can be disabled in the name resolv- 
er" s internal tables, using administrative means. 

The context that may be used as a basis for the 
binding is variable; it may include information about the 
requester (e.g. requester IP address, domain name or 
inferred geographical region), about the destination 
(with similar alternatives), about the request itself (e.g. 
type or quality of service requested), or about independ- 
ent information (e.g. time of day or time zone of the point 
of origin of the request). 

The system may be implemented (eg as part of a 
computer apparatus) using hardware, software, or com- 
binations thereof. 

The invention will now be described by way of ex- 
ample with reference to the accompanying drawings, 
throughout which like parts are referred to by like refer- 
nces, and in which: 

Figures 1 -2A are diagrams of present network sys- 
tems used for destination addresses for requests. 

Figure 3 is a flow chart illustrating a method accord- 
ing to an embodiment of the present invention, 

Figures 4 and 5 are diagrams of network systems 
incorporating features of embodiments of the present in- 
vention. 

Figure 6 in an illustration of the operation of an em- 
bodiment of the invention using geography-based res- 
olution criteria. 

Figure 7 is a diagram depicting zones in which do- 
main name service resolvers and service location re- 
solvers of the invention may be located. 

A method according to the invention is illustrated in 
Figure 3, and Figures 4-5 shows a suitable systems im- 
plementable on the Internet or Worldwide Web, the In- 
ternet or an Intranet,, incorporating features of the name 
resolution system. 

Name resolution can include any kind of name res- 
olution lookup for binding one object to another. This in- 
cludes binding the name of a service to a host computer 
(or its I P address) that provides that service, and binding 
the type of service to the name of a service providing 
that type of service. It also includes resolving a name in 
one domain to another name in the same domain, and 
to another name in a different domain. For the purposes 
of this invention, the terms "service" and "host" can be 
considered synonymous, as can "service location" and 
"host location". 

The system includes three fundamental features 



that can be impl m nted singly or in any combination 
with one another: multiple binding of destination ad- 
dresses to names; caller context name resolution in con- 
nection with such multiple binding: and name resolution 
5 policy considerations, i.e. independent criteria upon 
which such resolution is based. 

Name Resolution : An Example 

An example of name resolution occurs, for instance, 
when a user wishes to view video, e.g. a movie, on his 
or her computer. An application running on the computer 
is used to make a procedure call to the name resolver 
to determine which server can serve a movie, e.g. 

service_handle = name_service_lookup("movie") 
where the string "movie" is passed to a server, which 
then returns the name of the service providing that mov- 
ie (or it may return a linked list of services providing mov- 
ie services, from which the user may be prompted to 
select one). 

The server may, by way of example, return a singl 
service name (e.g. "quicktime") in the variable call d 
"service_handleV Next, the application must determine 
which server host can provide this service to this client; 
to do this, it makes another name resolution call: 

host_handle = name_hostname_lookup 
(service_handle) 

and passes it the variable "service_handle" returned by 
the previous call. This call returns it the name of a server 
which is listed as offering this service. 

The network location of this server must now be de- 
termined, so that the user's computer or workstation can 
connect to it to get the movie service, and so it makes 
the call: 

host_IP_address = nome_hostaddress_lookup 
(host_handle) 

and finally obtains an IP address of an appropriate host 
that can provide the movie service to the user. 

Further calls to this quicktime server may determine 
a list of movies that are available. Alternatively, a design 
may be had in which the caller simply specifies the name 
of the movie he wants to see, and the name lookup re- 
turns to the caller the IP address of a host that is cur- 
rently able to serve the requested movie to the caller. 

All of or some of the above steps may be combined 
in more integrated calls to the name resolver. 

In the present invention, in addition to the above, 
an additional parameter is passed to the 
name_hostaddress_lookup() function above (or to all 
the functions above); this parameter may be called the 
caller_context. This caller_context is used by the name 
resolver to help it decide which IP address to use. Thus, 
the calls would look like: 

host_IP_address = name_hostaddr ssjookup 
(host_handle : caller_cont xt). Caller_context is a cook- 
ie (or structure) that may include information such as th 
caller's IP address, its point of origin, the quality of the 
requested service, or any other context that might be 



75 



20 



25 



30 



35 



40 



45 



SO 



BNSDOCID: <EP 0817444A2_I_> 



3 



5 EP0 817 

relevant. These contexts must b well specified and 
their format(s) standardized, so that many different 
name resolvers can interoperate properly. The particu- 
lar caller_context formats and contents selected are not 
themselves crucial, 5 

The present embodiment uses requester context- 
dependent intelligence to determine which of several 
destination hosts should be utilized, or in other words, 
which of several IP addresses should be used to resolve 
a given "name" request. The context-dependent intelli- 10 
gence, implemented as hardware or software or a com- 
bination of both, allows the "name" resolution to be 
based upon some context information from the reques- 
tor, and/or upon the "name" being resolved in a context- 
free manner, but optionally dependent upon criteria is 
such as load balancing on the destination. 

As shown in Figure 4, a requesters 100-120, of 
which there may be an arbitrary number, each comprise 
computers or workstations on a local network, served 
by a server 1 50. The requesters will typically be conven- 20 
tional workstations, personal computers, or any net- 
workable computing device, with local processors (1 30, 
tc), memory (140, etc.), mass storage (not shown) and 
network connections. The server 150 also includes a 
conventional processor 160, memory 170, mass stor- 25 
age and necessary connections and control hardware 
and software. 

A name resolver 180 forms part of the server 150, 
or may be a separate unit It may be implemented en- 
tirely in software, i.e. as program modules stored in 30 
mass storage and/or the memory 170, or it may be a 
stand-alone device, with its own logic or processor and 
memory, as desired. 

The server 150 is connected to a broader network 
1 70, such as the Internet, an Intranet or WAN (wide-area 35 
network), or the Worldwide Web, via a network connec- 
tion (e.g. a T-line) 260. On this network 1 70 is optionally 
another name resolver 200, which may be implemented 
in the same fashion or differently from the name resolver 
1 80. Name resolvers 1 60 and 200 may both be used, or 40 
either may be used by itself. (See discussion of Figure 
7 t below.) 

Destination hosts 21 0-230 may also be convention- 
al computers or workstations with processors (such as 
240), memory (such as 250), mass storage (not shown), 45 
network connections, etc., as needed to implement con- 
ventional network functions in addition to the features of 
the present invention. 

Referring to the flow chart of Figure 3, when a re- 
quester (such as 1 00-1 20) sends a name resolution re- so 
quest to a name resolver 1 80, instead of the single bind- 
ing of conventional systems, the name resolver 180 in- 
cludes multiple binding tables and/or functions (imple- 
mented by appropriate logic or program modules) to re- 
solve the request to an appropriate IP address for a des- ss 
tination host (such as 210-230 in Figure 4). 

An example of such a multiple binding would be the 
binding of multiple, geographically disparate destina- 
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tions to a single domain name. If, for instance, a user in 
Germany wishes to access www.sun.com (the WWW 
server for Sun Microsystems, Inc.), he or she can simply 
use the Uniform Resource Locator (URL) "http://www. 
sun.com"). Thus, the user sends the request from re- 
quester 310 (see Figure 6), and the name resolver 320 
determines that the requester is in Germany. (See step 
20 in Figure 3). The selected destination may either be 
in the United States or elsewhere in Europe : since Sun 
Microsystems in this example has two "sun.com" loca- 
tions. Since there is a valid European local destination 
330, the name resolver 320 resolves the destination ad- 
dress to sun.com (Europe), as indicated at box 30 of 
Figure 3. This resolved destination is then selected for 
the request packet(s) (box 40 of Figure 3), and the re- 
quest is forwarded to sun.com (Europe) (box 50 of Fig- 
ure 3). 

Following are lists of context-dependent resolution 
criteria applicable to the invention and usable at box 30 
of Figure 3, where resolution may be based upon re- 
quester information, destination information, request 
contents, or other information: 

A Resolution Based Upon Requester information 

Examples of manners in which the resolution de- 
pendent upon requester information may be carried out 
include: 

1 . resolution based upon the domain name of the 
sender; 

2. resolution based upon the inferred (looked-up) 
actual geographic region of the sender; 

3. resolution based upon other geography-related 
information of the sender: 

4. either directly ascertainable from the request 
(city/country info, e^g.); and/or 

5. indirectly ascertainable (area code, addr ss, 
etc.); 

6. resolution based upon quality of service desired 
by the requester; and 

7. resolution based upon requester's time of day or 
time zone. 

B. Resolution Based Upon Destination information 

Examples of manners in which the resolution de- 
pendent upon a specified or intended destination or re- 
ceiver information may be carried out include: 

1 . resolution based upon the load at the receiver: 

2. resolution based upon the inferred (look d-up) 
actual geographic r gion of the receiver; 

3. resolution based upon other geography-related 
information of the receiver: 
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4. either directly ascertainable from the request 
(city/country info, e.g.); and/or 

5. indirectly ascertainable (area code, address, 
etc.). 

Criterion B.1 can be resolved either based upon in- 
formation as perceived at the sender end or based upon 
information as it exists at the receiver end, and resolved 
at the sender end. For example, the sender might fre- 
quently send requests to a particular server, service, ge- 
ographical region or organization. In this case, it may be 
advantageous to regularly poll one or more often-used 
destinations to determine their level(s) of activity. Alter- 
natively, such polling could automatically be carried out 
for any destinations for which the sender determines 
that its number of requests exceeds a certain threshold, 
or for a top predetermined percentage of requests sent 
by the requester (e.g. all destinations for which the 
number of requests exceeds N1%, or the top N2 desti- 
nations to which the sender makes requests, where N1 
and N2 are appropriate predetermined numbers). Poll- 
ing can be implemented as program modules integral to 
the name resolver(s), either entirely in one or in more 
than one location (e.g. partially in a local name resolver 
and partially in the destination server). 

Alternatively or in addition, criterion B.I may be 
based upon information at the receive end at the time 
of sending the request, and resolved at the receiver. 

C Resolution Based Upon Request Contents 

1. type of service requested; 

2. specific information (or type of information) re- 
quested; 

3. any other implicit information inferred from the re- 
quest; and/or 

4. any other explicit information obtained from the 
request. 

* D Resolution Dependent Upon Other Factors 

1. randomly generated selection of destination 
based upon qualified list; and/or 

2. other independently developed information. 

These resolution criteria can be used singly or in 
any desired combination with one another, as specified 
by the requester or the administrator of the destination 
(e.g. server owner or service provider). For instance, in 
the example of Figure 6 the resolution of the destination 
address to sun.com (Europe) could be modified if the 
load of sun.com (Europe) is larger by some predeter- 
mined th reshold amount than the load at sun .com (USA) 
in which case the sun.com (USA) resolution could 
override the default sun.com (Europe) resolution for re- 
quest rs in Europe, either at all times or only during 
peak European hours, which correspond to off-peak 
hours in the United States. 



An xt nsion of this system is in the resolution of 
services provided at the receiver network of a request. 
For instance, a given organization may have many da- 
tabase servers, and request for access to given infor- 

5 mation may in conventional systems be routed to the 
same server, because of the single binding nature of 
destination resolution. With multiple address resolution 
binding, multiple database servers (or other destination 
hosts) such as 210, 270, 280, etc. (see Figure 5) may 

io be made available under a single name, in which case 
a local service resolution server, such as server 300 in 
Figure 5, is provided. The server 300 includes tables, 
program modules or the like as desired to resolve a re- 
quest to any one of several to many IP addresses. The 

is selection of a given server to receive a request can de- 
pend upon, for example, load at each of the servers. 

In general, the resolution systems or subsystems 
will be in one of three "zones" (see Figure 7): the send- 
er's zone 1 (up to, e.g., the sender's firewall or Internet 

20 server); the name resolver system's zone 2 (which may 
be at a server on the Internet or any place outside zone 
1 which is not in the receiver's system; and the receiver's 
zone 3. Service location name resolve rs may be in any 
of zones 1-3; typically, destination lookup name resolv- 
es ers, which may comprise multiple-binding domain name 
services (DNS's), will be in either zone 1 or zone 2. It 
will be understood that zones, for the purpose of this 
application, are administrative boundaries, and need 
not correlate to actual network boundaries. 

30 The present embodiment can interact with existing 
systems in a number of ways. For instance, in secur 
systems where the source address is stripped from the 
request by a firewall (and only, e.g., the domain nam 
remains), then the entire source address would not be 

35 used to resolve the destination; the name resolver is 
provided with the program instructions or circuitry to im- 
plement this. Note also that the DNS name resolution 
may be a distinct operation from service location, and 
thus the destination can be selected due to a combina- 

40 tion of considerations including source address, re- 
quested destination address, and request contents, in- 
cluding the type of request made or service requested. 

The multiple binding feature of the invention allows 
a single name, Internet address (e.g. URL address such 

45 as http://www.sun.com) or the like to represent as many 
actual servers (or services) as desired. This has a dis- 
tinct advantage of allowing modifications, upgrades or 
replications to be made to the destination server(s) with- 
out modification of the destination address or service 

50 name as used by the requester. Such modifications may 
include adding servers or services, or establishing a mir- 
ror site at a location geographically near a large source 
of requests, etc. 

There may be security and consistency implications 

55 of multipl bindings, with concomitant solutions. If a des- 
tination address can be multiply bound, a name resolver 
may be configur d to bind to an incorrect address, either 
deliberately or otherwise. While this may also be a prob- 



5 



BNSDCCID: <EP 0817444A2J_> 



9 



EP 0 817 444 A2 



10 



lem with xisting single binding, multiple binding may 
complicate detection of the problem. Thus, the system 
of the invention may be combined with programs and 
tables for verification that a given binding is valid. Very 
secure systems may wish to limit their multiple binding 
to a predetermined, fixed number of resolution possibil- 
ities, or even maintain the current system of single bind- 
ing as far as Internet or Web transmission is concerned, 
and implement multiple binding only behind a firewall. 
Alternatively or in addition, encryption and digital signa- 
tures may be used to ensure validity of bindings, and of 
modifications or additions to the bindings. 

Variations may be had by designating a given name 
resolution as a default resolution, and utilizing alterna- 
tive resolutions only upon the request meeting prede- 
termined criteria (such as load imbalance, geographical 
distance, specific sources of the request, etc.). 

Additional bindings (i.e. additional addresses to 
which a request may resolve) may be added without the 
requester being aware of it, and indeed substitutions 
may be made at any time, again transparently to the re- 
quester. 

F. Service Selection Based Upon Caller Context 

The system of the invention may be applied more 
generally to the use of caller context for name resolution. 
Context about the requesting user (e.g. in a variable 
called "caller_context°) can be passed to appropriate 
functions, such as: 

service Jiandle = name.serviceJookupCmovie", 
caller_context) 

host_handle = nam e_host name Jookup 
(service_handle, caller_context) 
Here, the function service_handle executes a service 
name lookup based upon the input "movie", as well as 
the information in the variable caller_context, outputting 
the value service_handle. Given this output as input, 
along with (again) caller_context, the function 
hostjiandle then returns an appropriate host name. 

An example of a possible such situation could result 
when a user desires an encryption service, and several 
encryption policies are available. The service_handle 
function can be configured to return different encryption 
algorithm services based upon the specified destination 
(which is specified in caller_context), or there may be 
an effective override in the caller_context by which the 
user can select a higher level of security. 

In general, as noted above, the invention may be 
implemented at the sender's system or at the destina- 
tion system, or indeed at points in between (e.g. at proxy 
servers). Note that single points of failure and bottle- 
necks are removed using the present system, and a truly 
distributed, multiply binding name resolution system is 
achieved. 

Particular and preferred aspects of the invention are 
set out in the accompanying independent and depend- 
ent claims. Features of the dependent claims may be 



combined with those of the independent claims as ap- 
propriate and in combinations other than those explicitly 
set out in the claims. 



Claims 

1 . A system for name resolution of at least one request 
directed to a destination name of a receiver and is- 
io sued from a requester system, including: 

a name resolve r connected to the requester 
service and including 

predetermined information correlating a plural- 
75 ity of destination addresses with said destina- 

tion name; 

a criteria selection subsystem configured to 
provide a selection of at least one said destina- 
tion address based upon at least one predeter- 
20 mined criterion; and 

a destination address binder configured to bind 
said destination name with said selected desti- 
nation address. 

2S 2. The system of claim 1 , wherein said at least one 
predetermined criterion includes a criterion based 
upon information explicitly contained within said re- 
quest. 

30 3. The system of claim 2, wherein said information in- 
cludes an address of said requester. 

4. The system of claim 2, wherein said information is 
based upon at least a portion of contents of said 

35 request. 

5. The system of claim 4, wherein said portion of said 
contents includes at least one of: 

40 a type of service requested by said request; and 

a quality of service requested by said request. 

S. The system of claim 1 , wherein said at least one 
predetermined criterion includes a criterion based 
4 $ upon information not explicitly contained within said 
request. 

7. The system of claim 6, wherein said information 
pertains to a geographical region of said requester. 

so 

8. The system of claim 6, wherein said information 
pertains to a geographical region of said receiver. 

9. Th system of claim 6, wherein said information in- 
55 eludes load information relating to said receiver. 

10. The system of claim 6, wherein said information in- 
cludes at least one of time and date information. 
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11. The system of claim 1, wherein said binding is to a a random factor generat d by said name re- 

port at said d stination address. sotver. 



12. The system of claim 1, wherein said binding is 
based at least in part upon a random selection of 
one said destination address. 

1 3. A method for context-dependent binding of a desti- 
nation name to a destination address in a name re- 
solver having a predetermined set of binding criteria 
and predetermined correlations of destination 
names with destination addresses, wherein at least 
one said correlation is a multiple correlation corre- 
lating a plurality of said destination addresses with 
a single destination name, including the steps of: 

(1) receiving said request at said name resolv- 
er; and 

(2) based upon said multiple correlation, re- 
trieving at least one said destination address 
from said plurality of destination addresses. 

14. The method of claim 13, further including after step 

2, the step of: 

(3) binding said retrieved destination address 
to said destination name. 

1 5. The method of claim 1 4, further including after step 

3, the step of: 

(4) transmitting said request with said desti- 
nation address. 

16. The method of claim 1 3, wherein said multiple cor- 
relation is based upon information explicitly con- 
tained within said request. 

17. The system of claim 13, wherein said multiple cor- 
relation is based upon at least a portion of contents 
of said request. 

18. The system of claim 13, wherein said multiple cor- 
relation is based upon at least one of: 

an address of said requester; and 

a type of service requested by said request; and 

a quality of service requested by said request. 

19. The system of claim 1 , wherein said multiple corre- 
lation is based upon information not explicitly con- 
tained within said request. 



21 . A system for name resolution of at least one request 
5 directed to a destination name of a receiver and is- 
sued from a requester system, the request informa- 
tion relating to caller context, the system including: 
a name resolver connected to the requester 
service and including 

10 

predetermined information correlating a plural- 
ity of service names with said caller context; 
a service selection subsystem configured to 
provide a selection of at least one said service 
7£ name based upon said caller context; and 

a host name selection subsystem configured to 
return a host name based corresponding to 
said selected service name. 

20 22. The system of claim 1, wherein said at least one 
predetermined criterion includes: 

a first criterion based upon information explic- 
itly contained within said request; and 
2S a second criterion based upon information not 

explicitly contained within said request. 

23. The system of claim 22, wherein said second crite- 
rion corresponds to a predetermined policy used by 

30 said name resolver. 

24. The system of claim 23, wherein said first criterion 
corresponds to information relating specifically to 
said requester system. 

3S 



40 



45 



SO 



20. The system of claim 19, wherein said multiple cor- 
relation is based upon at least one of : 

a g ographical region of said receiver; 
load information relating to said receiver; 
time information; 
date information; and 



7 



BNSDOCID: <EP 0817A44A2J_> 



EP 0 817 444 A2 



Figure 1 



Service 1 



Requester 1 



Service 2 



Requester 2 



Network 



/DNS lookup^ 
[ looks up 
^Csun.com* 



Requester X ' 



Service 3 



Prior Art 




BNSDOCID: <EP 0S174A4A2J_ 



EP 0 817 444 A2 



Figure 2A 



r 2 




r 


Requester issues 




DNS Lookup looks up 


name ** sun.com'* 




name "sun.com" 




| DNS_Spoofing_service (on Host 4) 



Figure 3 
Service Resolution 



10 



Requester sends request 

1 



■ 20 



Name Resolver receives request 



I 



CONTEXT-DEPENDENT RESOLUTION 



30 



Geographical or 
point-of-origin based 
resolution 



Load-based 
resolution 



Other 
resolution(s) 



Time/Time Zone 
and/or Date 



Request-type based 
resolution 



Quality 
of service based 
resolution 



I 



Select a destination 



I 



Forward request to 
selected destination 



40 



50 



BNSDOCID: <EP 0917444A2J_> 



9 



EP 0 817 444 A2 



100 



Figure 4 



120 




BNSDOCID: <EP 0817444A2J_> 



10 



EP 0 817 444 A2 



100 



Figure 5 



130 
140 

110 



Requester 1 



Processor 



Memory 



Requester 2 



Server 



160\ 



150 



120 



Requester M 




11 




BNSDOCID: <EP 0817444A2_L> 



12 



EP 0 817 444 A2 



Figure 7 



Zone 1 


Zone 2 


Zone 3 


SENDER 


RESOLVER 


RECEIVER 




SYSTEM 




Service Location 


Service Location 


Service Location 


Resolverl 


Resolver2 


Resolver3 


Destination 


Destination 




Lookup 1 


Lookup2 





13 

BNSDOCID: <EP 08174-44A2J_> 




(19) 



J 



Eur paisch s Pat en tarn t 
Eur pean Patent Offic 
Offtc uropeen d s brev ts 



(12) 



(id EP 0 817 444 A3 

EUROPEAN PATENT APPLICATION 



(88) Date of publication A3: 

27.12.2000 Bulletin 2000/52 

(43) Date of publication A2: 

07.01.1998 Bulletin 1998/02 

(21) Application number: 97304697.2 

(22) Date of filing: 30.06.1997 



(51) mtci7: H04L 29/06, H04L 29/12 



(84) Designated Contracting States: 

AT BE CH DE DK ES Fl FR GB GR IE IT LI LU MC 
NL PT SE 

<30) Priority: 01.07.1996 US 674561 

(71 ) Applicant: SUN MICROSYSTEMS, INC. 

Mountain View, California 94043-1100 (US) 



(72) Inventor: Ebrahtm, Zahir 

Mountain View, California 94043 (US) 

(74) Representative: Turner, James Arthur et al 
D. Young & Co., 
21 New Fetter Lane 
London EC4A 1 DA (GB) 



(54) System for context-dependent name resolution 



(57) A context-dependent, multiply binding name 
resolution system. A name resolver is provided, con- 
nected to either a requester's system or a receiver's sys- 
tem, or both. Requests to a given service or domain 
name are resolved to the appropriate IP address. The 
intended recipient of the request is resolved based upon 
a combination of one or more predetermined criteria, in- 
cluding: information about the sender (e.g. geographical 



location, specific requester identity, etc.); information 
about the intended recipient (e.g. load balance at the 
receiver, type of service, etc.); information contained 
within the request itself (e.g. type of service requested); 
or other information (time of day, date, random selection 
of recipient, e.g.). The system is implemented in hard- 
ware and/or software, and the resolution criteria can be 
made interdependent or independent. 



Figure 3 
Service Resolution 



r 



10 





Requester sends request 




\ 





20 



CO 

< 

CD 

o 

Q_ 
LU 



r 



30 



CONTEXT-DEPENDENT RESOLUTION 



Geographical or 
point-of -origin based 
resolution 



Load-based 
resolution 



Other 
resolution(s) 



Time/rime Zone 
and/or Date 



Request-type based 
resolution 



Quality 
of service based 
resolution 



Select a destination 



40 



Forward request t 
selected destination 



50 



Printed by Jouve. 75001 PARIS (FR) 



BNSDOCfD: <EP 08174A*A3_I_> 



EP 0 817 444 A3 




European Patent 
Office 



EOROPEAW SEARCH REPORT 



Application Mucnbar 

EP 97 30 4697 



DQCUWJEfc3TS CONSIDERED TO BE RELEVAIMT 



Category 



Citation of document with indication, where appropriate, 
of relevant passagas 



Relevant 
to claim 



CLASStflCATOM OF THE 
APPLICATION (lnt.a.6) 



US 5 136 716 A (HARPER JOHN ET AL) 

4 August 1992 (1992-08-04) 
* abstract * 

column 2, line 22 - line 53 * 

column 3, line 4 - line 40 * 

column 3, line 63 - column 5, line 24 * 

claims 1,4 * 



The presort soaich report has baen tbexm up tor 63 claims 



1,6,13, 
14,16,17 

15,21 



H04L29/06 
H04L29/12 



TECHNICAL REUJS 

seancMED (tja.cu) 



H04L 



THE HAGUE 



Ddo of oomptftiuw o* thft ocoroh 

7 November 2000 



Kestmg, V 



CATEGORY OF CITED DOCUMENTS 

X -. particularly reesvam it lawn alms 

V : parttoularty refcsvani it combined with another 

ooc umant of the same category 
A : techno) leal Background 
O : non -written disclosure 
P : tmemediflte document 



T : theory or Drinetpta underlying the invention 
E : earlier patorrt document, but publtshoa on, or 

after the filing date 
D : document crteo in trta cppttcaiion 
L : document cited for other reasons 



ft : membor of tte tamo patent family, corroesonding 
document 



BNSDO CID <EP 0817444A3 I > 



2 



EP 0 817 444 A3 



ANNEX TO THE EUROPEAN SEARCH REPORT 

ON EUROPEAN PATENT APPLICATION NO. EP 97 30 4697 



This annex lists the patent family members relating to the patent documents cited in the above-mentioned European search report. 
The members are as contained in the European Patent Office EDP file on 

The European Patent Office is in no way liable tor these particulars which are merely given for the ourposo of Information. 

07-11-2000 



Patent document 
cried in search report 


Publication 
date 


Patent family 
members) 


Publication 
date 


US 5136716 A 


04-08-1992 


CA 


1312144 


A 


29-12-1992 






DE 


3876617 


A 


21-01-1993 






DE 


3876617 


D 


21-01-1993 






DE 


3876617 


T 


08-04-1993 






EP 


0329779 


A 


30-08-1989 






JP 


1502861 


T 


28-09-1989 






WO 


8902129 


A 


09-03-1989 



i 

s 

tr 

2 ; 

c 

ui For mora details about this annex : see Official Journal otthe European Patent Office. No 12/82 



BNSDOCID: <EP 0817<KUA3_I_> 



3 



r 



THIS PAGE BLANK (uspto, 



v 



